[VIM] SA31294 / CVE-2008-3408 / OSVDB 47194

Carsten H. Eiram che at secunia.com
Mon Aug 17 11:32:01 UTC 2009


While the original exploit triggers one vulnerability, then there are
actually two stack-based buffer overflow vulnerabilities in the same
part of the code. The one triggered depends on whether the string starts
with a backslash or not.

Furthermore, as the vulnerabilities are in a part of the code not used
solely for M3U parsing, they can be exploited via other playlist formats
as well (e.g. PLS).

Our advisory, SA31294, contains a bit more information.


-- 

Med venlig hilsen / Kind regards


Carsten H. Eiram
Chief Security Specialist

Secunia 
Weidekampsgade 14 A
DK-2300 Copenhagen S
Denmark

Phone  +45 7020 5144
Fax    +45 7020 5145



More information about the VIM mailing list